Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid - reverse proxy?

    Scheduled Pinned Locked Moved pfSense Packages
    2 Posts 1 Posters 2.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      louis-m
      last edited by

      has anybody been sucessful configuring this?

      i'm only just starting to play with squid on an alix (no cache etc) and want to try a reverse proxy.
      i would imagine you listen on the wan on port 80 to start with but that's as far as i've got.

      i've now got a firewall rule on port 80 pointing to the wan and can see squid as it comes up with the usual error page.
      but i can't seem to redirect anything after that eg myserver.myexternal.com > myserver.myinternal.local

      i have squidguard install so i take it this is done under a rewrite?

      any help would be appreciated,
      thank you
      louis

      1 Reply Last reply Reply Quote 0
      • L
        louis-m
        last edited by

        well, after a while i give up as time was precious. i then spotted the apache server with mod security package (reverse proxy etc) and decided to have a go at this.
        out went squid and in came apache (this is on an alix 2d3 with cf)
        i had this horrible feeling that it was too much for the poor old alix and this was confirmed by the amount of packages etc that it installed with it.
        the alix started to creak and i couldn't access the web config. it became so unresponsive, i couldn't hardly do anything with it.
        so, from the shell….. lots of pkg_delete -f -a with lots of /etc/rc.conf_mount_rw
        after about 7 runs, i finally clear everything out so no packages. i even delete the remaining traces of them.
        i'm on the net but no web configurator. a check of the logs reveals missing dependancies. no prob's, i have another pfsense and i copy the missing shared files over.
        but still, no web configurator. it's starting to beat me now. i have a config backup etc so i keep ploding away.
        everything is working fine but the web configurator. ummm, check the config and i can't see any port under webgui so i add a <port>443 in front of</port> thinking that's why i couldn't get onto it.
        crash.... now i'm really stuffed, no web either now. i'm off the net with a few choice words. i now remember, i tried an upgrade to v2 and had that on the other slice (silly me, why didn't i duplicate it back to 1.2.3 before all of this? lesson learnt! won't happen again!)
        maybe time to upgrade to v2 as i have this other slice....... no, i get the usual probs with it not remembering vlans etc.
        no prob's, i will configure it with minimal lan and from there, install backup config. no, it's beat me again with "a scalar value error" and just won't let any lan be configured under v2.
        shock horror..... i don't want to remove the cf card and reinstall etc. i'm not on the internet at this time and i haven't got a copy of pfsense with me.
        so, now i'm back into the config and removing the <port>443 and pfsense is back up but still no web config.
        and then it hit me.......
        try an upgrade with v1.2.3 on the v2 slice that doesn't work. so i upgrade this slice to 1.2.3 and voila...... pfsense is backup and running with web config. phew!

        moral of the story?
        1. have a working opposite slice & config backup before adding any packages
        2. don't go against your better judgement (me by loading apache etc on an alix) unless you have time to spare
        3. don't panic. sit back and think it out and you can get there in the end. you learn a bit too!

        now.... how can i waste my next sunday?</port>

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.